Network Detection and Response – The Building Blocks

In a previous article on this topic, I introduced NDR as a technology, and the key requirements for an NDR product or solution. In this article, I will explain the core technological building blocks of NDR. The Building Blocks of an NDR Solution A complete NDR solution should include end to end traffic monitoring, packet…

Network Detection and Response – The Differences with Others

Network traffic analysis tools are not new; in fact, they have been around for a long time and can be considered a mature sector within cyber security. In this article, I will highlight some of the major differences of NDR, as well as other relevant tools. Traditional network traffic analysis is more or less aligned…

Network Detection and Response – What You Need to Know

Recently, Gartner published its Market Guide for Network Detection and Response (NDR)*, previously named Network Traffic Analysis (NTA). This is the second year that Gartner has released the market report in this sector. It’s also the second year that the NDR solution from Hillstone Networks has been on the recommended vendor list. This is definitely…

Vulnerability: Windows Kernel Privilege Escalation Vulnerability Found by Hillstone Networks

Today, Microsoft released the June product updates, which fixed two Windows kernel privilege escalation vulnerabilities (CVE-2020-1247, CVE-2020-1253) reported by Hillstone Networks. The latest security notification is published on the Microsoft website. The vulnerability affects all versions of the Windows operating system (Windows 7, Windows 8.1, Windows Server and all Windows 10 releases). Figure 1: Microsoft…

Navigating Cloud Workload Protection: What You Should Know

The complexity and diversity of hybrid cloud architectures present special challenges for IT and security teams. The recently released Gartner “Market Guide for Cloud Workload Protection Platforms,2020*” provides valuable guidance for anyone tasked with ensuring the security of these architectures. In the new market guide, Gartner says, “container and serverless workloads are scanned for vulnerabilities…